Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/UnAn8_tH86SaevKLwGkBOYen1C4.roa
File: UnAn8_tH86SaevKLwGkBOYen1C4.roa (raw, json)
Hash identifier: lTygm1sCD+pYzH7gdhgMADSUdQGFjBpR4zpCLat8xP4=
Subject key identifier: 52:70:27:F3:FB:47:F3:A4:9A:7A:F2:8B:C0:69:01:39:87:A7:D4:2E
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 018A70D7EF9E458919ABF26E09BB9253809B
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/UnAn8_tH86SaevKLwGkBOYen1C4.roa
Signing time: Thu 07 Sep 2023 18:11:54 +0000
ROA not before: Thu 07 Sep 2023 18:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35583
IP address blocks: 95.164.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:70:d7:ef:9e:45:89:19:ab:f2:6e:09:bb:92:53:80:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Sep 7 18:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=527027f3fb47f3a49a7af28bc069013987a7d42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:f3:1a:68:f6:9e:48:41:96:16:dd:42:41:
d8:70:b6:c8:87:c1:f6:4e:33:18:68:50:df:e6:e3:
54:66:56:d7:6e:46:1c:17:1b:a6:52:2b:a0:52:2f:
fa:61:28:d4:89:a4:09:8b:5f:53:8e:98:bc:a1:2c:
56:e1:f4:be:0e:44:60:58:76:6b:11:d7:68:78:90:
26:c2:e6:e8:63:8d:cf:b4:5c:19:53:49:f1:01:dd:
47:c3:eb:26:2e:fd:fb:f3:0d:75:77:cb:f6:73:3d:
f4:94:12:96:8d:8c:0e:3b:5f:02:1c:b2:b2:f0:6a:
94:dd:ec:01:50:da:35:8b:04:07:fd:9e:58:ff:4b:
b0:3a:e7:70:16:c3:6b:db:48:8e:7e:de:ca:88:7f:
4d:4f:ee:ee:e9:d3:bb:45:40:32:3d:7e:07:b5:06:
86:b4:d7:8c:84:f2:d5:19:08:7d:74:94:b5:57:a9:
1f:68:ae:50:1b:8e:56:b9:63:81:f7:d3:4e:a0:7d:
5e:04:f6:cb:cc:71:58:49:c3:85:8d:25:34:63:b6:
d9:f7:10:13:f3:a8:62:a6:4b:e9:c8:4f:8b:26:4a:
2a:5c:42:45:5a:79:9e:69:d2:58:66:36:e1:de:a2:
0b:a0:10:d3:a4:3b:4f:ab:fd:4d:d9:9b:3d:f9:28:
9e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:70:27:F3:FB:47:F3:A4:9A:7A:F2:8B:C0:69:01:39:87:A7:D4:2E
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/UnAn8_tH86SaevKLwGkBOYen1C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a3:64:aa:d9:1b:77:85:13:f1:fd:04:ed:2f:22:b9:3c:21:
58:21:f6:03:4e:4e:05:31:f9:38:0f:8c:8d:fd:5f:63:23:59:
fd:dd:35:c3:ad:45:22:ed:5a:20:0f:fa:57:67:ba:74:16:79:
62:40:c1:ff:ab:8b:6f:ec:7d:a2:dc:19:7e:22:1c:b0:f4:ba:
d6:ae:d1:9a:85:70:73:b1:d2:c6:1e:2b:05:f8:ea:3a:3a:c8:
7a:7b:b6:f3:62:ba:0a:28:dd:3e:3c:4c:e0:ab:68:b8:7c:f0:
fc:e1:a6:b3:40:cd:93:80:af:fc:34:87:40:20:64:a7:6e:0f:
ab:0e:df:9f:7c:55:d5:0d:82:d7:b9:62:42:ca:85:a6:39:f8:
e4:3c:ec:e2:9a:f1:fa:3f:8d:9d:58:83:22:a5:4c:47:a7:8b:
e5:22:78:10:14:3f:b5:63:c2:98:78:1e:ca:8e:0c:35:fd:8f:
fd:6e:71:ab:95:29:48:31:70:fa:b0:cd:5f:88:d8:c2:88:3e:
53:4c:95:9e:02:0d:25:6a:a5:62:a1:e5:3a:af:4a:94:40:4e:
fc:43:92:f3:2c:87:c0:22:fd:42:bb:c1:43:aa:1d:ad:ac:be:
a7:e6:15:10:d3:82:4e:bd:b4:3f:90:46:f5:22:ee:3c:da:8f:
01:d9:76:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpw1++eRYkZq/JuCbuSU4CbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjMwOTA3MTgxMTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjcwMjdmM2ZiNDdmM2E0OWE3YWYyOGJjMDY5MDEzOTg3YTdkNDJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1bzGmj2nkhBlhbdQkHYcLbIh8H2
TjMYaFDf5uNUZlbXbkYcFxumUiugUi/6YSjUiaQJi19Tjpi8oSxW4fS+DkRgWHZr
EddoeJAmwuboY43PtFwZU0nxAd1Hw+smLv378w11d8v2cz30lBKWjYwOO18CHLKy
8GqU3ewBUNo1iwQH/Z5Y/0uwOudwFsNr20iOft7KiH9NT+7u6dO7RUAyPX4HtQaG
tNeMhPLVGQh9dJS1V6kfaK5QG45WuWOB99NOoH1eBPbLzHFYScOFjSU0Y7bZ9xAT
86hipkvpyE+LJkoqXEJFWnmeadJYZjbh3qILoBDTpDtPq/1N2Zs9+SieZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFJwJ/P7R/Okmnryi8BpATmHp9QuMB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvVW5BbjhfdEg4NlNhZXZLTHdHa0JPWWVuMUM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6QwMA0G
CSqGSIb3DQEBCwUAA4IBAQB+o2Sq2Rt3hRPx/QTtLyK5PCFYIfYDTk4FMfk4D4yN
/V9jI1n93TXDrUUi7VogD/pXZ7p0FnliQMH/q4tv7H2i3Bl+Ihyw9LrWrtGahXBz
sdLGHisF+Oo6Osh6e7bzYroKKN0+PEzgq2i4fPD84aazQM2TgK/8NIdAIGSnbg+r
Dt+ffFXVDYLXuWJCyoWmOfjkPOzimvH6P42dWIMipUxHp4vlIngQFD+1Y8KYeB7K
jgw1/Y/9bnGrlSlIMXD6sM1fiNjCiD5TTJWeAg0laqVioeU6r0qUQE78Q5LzLIfA
Iv1Cu8FDqh2trL6n5hUQ04JOvbQ/kEb1Iu482o8B2XY2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org